CVE-2026-50593
Published
CVSS v3
7.3
HIGH
CVSS v2
N/A
Affected
1
PROJECT
Description
Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range.
Graphite is a "smart font" system developed specifically to handle the complexities of lesser-known languages of the world.
GitHub